[MEDIUM] Typo3 API Install Tool vulnerable to Cross-site Scripting

PKSA-v8sk-gshm-pkh6 CVE-2009-3636 GHSA-c73w-4rcj-2622

Affected package: typo3/cms-install

Affected version: >=4.3alpha1,<4.3beta2|>=4.2.0,<4.2.10|>=4.1.0,<4.1.13|<=4.0.13

Reported by:
GitHub